本文档详细介绍了如何在CentOS 7.1环境下搭建Openstack Rocky,包括系统配置、域名解析、端口监听、时间同步、组件安装及数据库配置等步骤。此外,还涵盖了创建虚拟机的过程,包括网络、子网、安全组和密钥对的设置,以及通过命令行和Web界面管理虚拟机的方法。
官方文档:https://docs.openstack.org/install-guide/
1.Openstack-Rocky环境准备
1.CentOS 7.1系统2台,每台2G内存,硬盘50G
zon1.openstack.com 192.168.16.11 网卡NAT eth0 控制节点
zon2.openstack.com 192.168.16.12 网卡NAT eth0 计算节点
2.域名解析:
/etc/hosts
192.168.16.11 zon1 zon1.openstack.com
192.168.16.12 zon2 zon2.openstack.com
###端口监听###
yum install net-tools -y
###时间同步###
yum install chrony -y
##配置
vim /etc/chrony.conf
Allow NTP client access from local network.
allow 192.168.0.0/16
##开机自启动服务
systemctl enable chronyd.service
systemctl start chronyd.service
##设置时区
timedatectl set-timezone Asia/Shanghai
##Base
yum install -y centos-release-openstack-rocky
yum install -y https://repos.fedorapeople.org/repos/openstack/openstack-rocky/rdo-release-rocky-0.noarch.rpm
yum upgrade -y
yum install -y python-openstackclient
##MySQL
yum install mariadb mariadb-server python2-PyMySQL -y
##RabbitMQ
yum install -y rabbitmq-server
##Keystone
yum install -y openstack-keystone httpd mod_wsgi memcached python-memcached
##Glance
yum install -y openstack-glance
##Nova
yum install -y openstack-nova-api openstack-nova-cert openstack-nova-conductor openstack-nova-console openstack-nova-novncproxy openstack-nova-scheduler python-novaclient
##Neutron zon1.example.com
yum install -y openstack-neutron openstack-neutron-m12 openstack-neutron-linuxbridge python-neutronclient ebtablesipset
##Dashboard
yum install -y openstack-dashboard
##MySQL##########################
yum install -y mariadb mariadb-server python2-PyMySQL
vim /etc/my.cnf.d/openstack.cnf
[mysqld]
bind-address = 192.168.16.11
#指定控制节点的管理网络IP地址
[mysqld]
default-storage-engine = innodb
innodb_file_per_table
max_connections = 4096
collation-server = utf8_general_ci
character-set-server = utf8
init-connect = ‘SET NAMES utf8’
#默认存储引擎 innodb
#使用独享表空间
#最大连接数
#设置校对规则字符集utf-8
#创建数据库默认字符集utf-8
#设置初始化连接字符集utf-8
systemctl enable mariadb.service
systemctl start mariadb.service
#设置密码
mysql_secure_installation
回车 初始密码空的
Y 设置root密码
Y 移除匿名用户
Y 关闭root远程登录
Y 删除默认test数据库
Y 重新刷新权限
mysql -u root -p
##Keystone数据库
mysql -u root -p
CREATE DATABASE keystone;GRANT ALL PRIVILEGES ON keystone.* TO ‘keystone’@‘localhost’ IDENTIFIED BY ‘keystone’;GRANT ALL PRIVILEGES ON keystone.* TO ‘keystone’@’%’ IDENTIFIED BY ‘keystone’;
##Glance数据库
CREATE DATABASE glance;GRANT ALL PRIVILEGES ON glance.* TO ‘glance’@‘localhost’ IDENTIFIED BY ‘glance’;GRANT ALL PRIVILEGES ON glance.* TO ‘glance’@’%’ IDENTIFIED BY ‘glance’;
##Nova数据库
CREATE DATABASE nova_api;GRANT ALL PRIVILEGES ON nova_api.* TO ‘nova’@‘localhost’ IDENTIFIED BY ‘nova’; GRANT ALL PRIVILEGES ON nova_api.* TO ‘nova’@’%’ IDENTIFIED BY ‘nova’;
CREATE DATABASE nova;GRANT ALL PRIVILEGES ON nova.* TO ‘nova’@‘localhost’ IDENTIFIED BY ‘nova’;GRANT ALL PRIVILEGES ON nova.* TO ‘nova’@’%’ IDENTIFIED BY ‘nova’;
CREATE DATABASE nova_cell0; GRANT ALL PRIVILEGES ON nova_cell0.* TO ‘nova’@‘localhost’ IDENTIFIED BY ‘nova’;GRANT ALL PRIVILEGES ON nova_cell0.* TO ‘nova’@’%’ IDENTIFIED BY ‘nova’;
CREATE DATABASE placement;GRANT ALL PRIVILEGES ON placement.* TO ‘placement’@‘localhost’ IDENTIFIED BY ‘placement’;GRANT ALL PRIVILEGES ON placement.* TO ‘placement’@’%’ IDENTIFIED BY ‘placement’;
##Neutron数据库
CREATE DATABASE neutron;GRANT ALL PRIVILEGES ON neutron.* TO ‘neutron’@‘localhost’ IDENTIFIED BY ‘neutron’;GRANT ALL PRIVILEGES ON neutron.* TO ‘neutron’@’%’ IDENTIFIED BY ‘neutron’;
##Cinder数据库
CREATE DATABASE cinder;GRANT ALL PRIVILEGES ON cinder.* TO ‘cinder’@‘localhost’ IDENTIFIED BY ‘cinder’;GRANT ALL PRIVILEGES ON cinder.* TO ‘cinder’@’%’ IDENTIFIED BY ‘cinder’;
#刷新权限
flush privileges;
#检查
mysql -u root -p
show databases;
###消息队列RabbitMQ#5672##
yum install -y rabbitmq-server
systemctl enable rabbitmq-server.service
systemctl start rabbitmq-server.service
netstat -ntlp
#新建一个rabbitMQ用户
#rabbitmqctl add_user 用户名 密码
rabbitmqctl add_user openstack openstack
#用户授权
rabbitmqctl set_permissions openstack “." ".” “.*”
##rabbitmq-plugins list插件支持列表
rabbitmq-plugins list
#启用插件,web管理#15672#
rabbitmq-plugins enable rabbitmq_management
systemctl restart rabbitmq-server.service
netstat -ntlp
#访问RABBITMQ_WEB
RabbitMQ_SERVER_IP:15672,用户: “guest” 密码: “guest”
http://192.168.16.11:15672/
默认只有Tags:administrator才可以登录
###Memcached服务###
yum install -y memcached python-memcached
vim /etc/sysconfig/memcached
OPTIONS="-l 127.0.0.1,::1,zon1"
systemctl enable memcached.service
systemctl start memcached.service
###########################################################
######keystone#5000/35357######
yum install -y openstack-keystone httpd mod_wsgi
随机码
openssl rand -hex 10
863d35676a5632e846d9
配置:
vim /etc/keystone/keystone.conf
[DEFAULT]
admin_token = 863d35676a5632e846d9
[database]
connection = mysql+pymysql://keystone:keystone@192.168.16.11/keystone
[token]
provider = fernet
#同步数据库,建表
su -s /bin/sh -c “keystone-manage db_sync” keystone
#初始化Fernet keys
keystone-manage fernet_setup --keystone-user keystone --keystone-group keystone
#使用apache来代理keystone
vim /etc/httpd/conf.d/wsgi-keystone.conf
cat >>/etc/httpd/conf.d/wsgi-keystone.conf<< EOF
Listen 5000
Listen 35357
<VirtualHost *:5000>
WSGIDaemonProcess keystone-public processes=5 threads=1 user=keystone group=keystone display-name=%{GROUP}
WSGIProcessGroup keystone-public
WSGIScriptAlias / /usr/bin/keystone-wsgi-public
WSGIApplicationGroup %{GLOBAL}
WSGIPassAuthorization On
ErrorLogFormat “%{cu}t %M”
ErrorLog /var/log/httpd/keystone-error.log
CustomLog /v
最低0.47元/天 解锁文章
509
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
